Tag: log4shell

Here you will find all the articles with the tag: log4shell.

New Spring Java framework vulnerability could be next Log4Shell

New Spring Java framework vulnerability could be next Log4Shell

The zero day vulnerability allows remote code execution. A new zero-day vulnerability in the Spring Core Java framework called 'Spring4Shell' has been publicly disclosed, according to a report in Bleeping Computer. The vulnerability allows unauthenticated remote code execution on applications. ... Read more

date10 months ago
UK NHS warns of Log4j vulnerability in VMware Horizon

UK NHS warns of Log4j vulnerability in VMware Horizon

The UK's National Health Service (NHS) has issued a warning stating that hackers are actively exploiting Log4j vulnerabilities in unpatched VMware Horizon servers. Log4j vulnerabilities are everything but a concern of the past. The problem continues to claim victims. The UK NHS recently issued a... Read more

date1 year ago
Security researchers find new Log4Shell in H2 database software

Security researchers find new Log4Shell in H2 database software

Security organization JFrog has found a vulnerability in H2. The problem is similar to Log4Shell, the infamous threat in Log4j. H2 consoles on servers accessible from the outside can be abused for remote code execution (RCE). Multiple lines of code in H2 send urls to a 'javax.naming.Context.look... Read more

date1 year ago